5 matches found
esp-flasher (>=1.1.1 <=1.1.2), esphome (>=1.12.0 <=2023.12.9) +15 more potentially affected by CVE-2023-46894 via esptool (>=2.6.0 <=4.6.2)
esptool PYPI version =2.6.0, =1.1.1, =1.12.0, =1.1.0, =0.1.0, =0.1.0, =1.0.106, =1.19.0, =1.20.3, =0.2.0, =0.1.1.dev1, =0.6.0, =0.1.0, =0.24.0, =1.0.3, =1.0.1, =1.0.180 and more Source cves: CVE-2023-46894 Source advisory: OSV:GHSA-3F38-96QM-R3FW...
CVE-2023-46894
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
CVE-2023-46894
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
CVE-2023-46894
Affected software: esptool 4.6.2. The CVE-2023-46894 entry describes an information disclosure due to a weak cryptographic algorithm used by esptool, enabling attackers to view sensitive data. The public documents confirm the vulnerability and its impact on confidentiality (CVE base score 7.5, HI...
CVE-2023-46894
Removed by vendor...